exploitDog

GHSA-jv2m-p9xq-jqm9

Опубликовано: 21 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

Insecure permissions in kubeslice v1.3.1 allow attackers to gain access to the service account's token, leading to escalation of privileges.

Insecure permissions in kubeslice v1.3.1 allow attackers to gain access to the service account's token, leading to escalation of privileges.

Ссылки

EPSS

Процентиль: 23%

0.00078

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2024-53350

CVSS3: 7.4

nvd

11 месяцев назад

Insecure permissions in kubeslice v1.3.1 allow attackers to gain access to the service account's token, leading to escalation of privileges.

EPSS

Процентиль: 23%

0.00078

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-269